CYBERSECURITY -
CISA Issues Alert on Top Exploited Vulnerabilities -
On July 28, 2021, the Cybersecurity & Infrastructure Security Agency (CISA) issued a cybersecurity alert entitled “Top Routinely Exploited...more
7/30/2021
/ Apple ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Popular ,
Vulnerability Assessments
Security researchers from Avast have discovered that “Crackonosh” malware has been installed on free versions of some popular online games for the purpose of cryptomining. It is believed to be sourced from a Czech author....more
University Medical Center in Las Vegas announced that it recently became the victim of a ransomware attack by REvil, a well-known threat actor that has attacked many hospitals and health systems with the Sodinokibi malware...more
New dictionary words have been formed to describe online scams. Phishing, one that everyone knows by now, is when a scammer uses a pretext in an email to get someone to click on a link or attachment in the email to deploy...more
6/24/2021
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Hackers ,
Information Technology ,
Malware ,
Phishing Scams ,
Ransomware ,
Scams ,
Social Engineering
Another example of the resiliency and creativity of cyber-attackers is outlined in a new blog by Cisco/Talos researchers, which outlines how, over the past year, and in particular as a result of the migration from work at the...more
4/16/2021
/ Cisco ,
Cyber Attacks ,
Cybersecurity ,
Data Protection ,
Information Technology ,
Malware ,
Remote Working ,
Risk Management ,
Slack ,
Telecommuting ,
Vulnerability Assessments
CYBERSECURITY -
FBI and DHS/CISA Issue Joint Alert on Mamba Ransomware -
The Federal Bureau of Investigations (FBI) recently issued a joint alert with the Department of Homeland Security/Cybersecurity Infrastructure and...more
4/9/2021
/ California Consumer Privacy Act (CCPA) ,
Cyber Crimes ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Homeland Security (DHS) ,
DMV ,
FBI ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Personally Identifiable Information ,
Ransomware
On April 6, 2021, DocuSign issued an Alert notifying users of a new malicious hacking tool that is mimicking DocuSign to drop malware into victims’ systems. According to the Alert, the document building tool, dubbed...more
Applus Technologies, Inc., a vendor of multiple state Departments of Motor Vehicles that assists states with vehicle inspections, recently announced that its systems have been affected by malware, disrupting motor vehicle...more
4/9/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
DMV ,
Hackers ,
Information Technology ,
Malware ,
Motor Vehicles ,
Popular ,
Safety Inspections
Aerospace and energy equipment manufacturer Honeywell has reportedly been hit with a cyber-attack in the form of a malware intrusion that disrupted some of its information technology systems....more
The statistic that cybercriminals have been unleashing 18 million phishing emails laced with malware on a daily basis into cyberspace during the pandemic is mind boggling and one that executives should pay attention to when...more
2/18/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Hackers ,
Information Technology ,
Malware ,
Personally Identifiable Information ,
Phishing Scams ,
Risk Management ,
Statistical Analysis
CYBERSECURITY -
NYDFS -
Cybersecurity Certificate of Compliance Due April 15, 2021
The New York Department of Financial Services (DFS), which regulates certain covered entities and licensed persons in the financial...more
1/22/2021
/ Blockchain ,
California Consumer Privacy Act (CCPA) ,
CARES Act ,
Class Action ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Financial Services Industry ,
Hackers ,
HIPAA Breach ,
Malware ,
Marriott ,
NYDFS ,
Paycheck Protection Program (PPP) ,
Personal Data ,
Personally Identifiable Information ,
Russia ,
SolarWinds ,
Vaccinations
The U.S. Department of Health and Human Services Office for Civil Rights (OCR) recently announced that it had entered into a Resolution Agreement, Corrective Action Plan, and settlement with Lifetime Healthcare, Inc., the...more
1/21/2021
/ Cyber Attacks ,
Cyber Crimes ,
Data Breach ,
Enforcement Actions ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Information Technology ,
Malware ,
OCR ,
Personally Identifiable Information ,
PHI
In the fall-out, the Department of Justice, which includes the FBI, the Drug Enforcement Agency and the U.S. Marshal’s Service, announced this week that 3 percent of its employees’ emails were compromised as a result of the...more
On the heels of the concerning security incident experienced by FireEye, during the investigation of its own incident, FireEye discovered that multiple updates issued by SolarWinds, a cybersecurity firm that many governmental...more
Cyber criminals are taking advantage of the increase in online holiday shopping due to the pandemic. They know people are buying gifts online and sending the packages to the recipients. Often, the recipients do not know they...more
Although it is logical that cyber attacks have risen during the pandemic, and there is anecdotal evidence that it is occurring, including our own experience, an interesting new report was recently released by Allianz, which...more
12/4/2020
/ Consumer Insurance Products ,
Coronavirus/COVID-19 ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Hackers ,
Infectious Diseases ,
Malware ,
Phishing Scams ,
Popular ,
Ransomware
The threat-related statistics of malware and ransomware are mind-boggling. We have regularly reported on the dramatic increase of ransomware, but the statistics on successful exploitation and botnet activities are just as...more
11/20/2020
/ Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Hackers ,
Malware ,
Phishing Scams ,
Popular ,
Ransomware ,
Vulnerability Assessments
We spend a lot of time reporting on ransomware because we are seeing more incidents than ever before, and our readers comment that keeping them up to date on ransomware tactics is helpful. The ransomware gangs, strains and...more
11/12/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Hackers ,
Information Technology ,
Malware ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Risk Management ,
Vulnerability Assessments
The misinformation on social media about the election results (and other topics) is rampant. Social media companies like Twitter and Facebook are struggling with the balance between the First Amendment right to free speech...more
11/6/2020
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Facebook ,
First Amendment ,
Free Speech ,
Malware ,
Misleading Statements ,
Online Platforms ,
Ransomware ,
Social Media ,
Twitter ,
Websites
The Department of Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) this week issued Alert (AA20-301A) titled North Korean Advanced Persistent Threat Focus: Kimsuky warning U.S. businesses, and...more
CYBERSECURITY -
U.S. Organizations Doing Business in China Warned of Malware in Tax Software -
The Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint...more
8/28/2020
/ ALEXA ,
Amazon Echo ,
Audits ,
Automatic License Plate Readers ,
Connected Cars ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Industry Regulatory Authority (FINRA) ,
Location Data ,
Malware ,
Motor Vehicles ,
Personal Assistants ,
Personally Identifiable Information ,
Popular ,
Scams ,
Websites ,
Zoom®
The Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint Flash Alert to U.S. based businesses doing business in China about a remote targeting campaign...more
8/28/2020
/ Banks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FBI ,
Foreign Corporations ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Malware ,
Popular ,
Software ,
Tax Planning ,
Tax Preparers
Security researchers are warning companies to be aware of a new resurgence of the Emotet botnet that has been reactivated after a hiatus of five months.
According to the researchers, the Emotet malware steals information,...more
Last week, authorities from the United States, United Kingdom and Canada accused a well-known hacker group tied to the Russian government, APT29 a/k/a Cozy Bear of using malware to exploit security vulnerabilities to enable...more
7/23/2020
/ China ,
Coronavirus/COVID-19 ,
Hackers ,
Intellectual Property Protection ,
Life Sciences ,
Malware ,
Pharmaceutical Industry ,
Popular ,
Research and Development ,
Russia ,
Vaccinations ,
Virus Testing ,
Vulnerability Assessments
The hackers behind the Sodinokibi/REvil ransomware have reportedly switched their demands for payment from Bitcoin or Ethereum to Monero cryptocurrency to try to prevent law enforcement from tracking payments....more